A newly discovered 732-byte Python exploit poses severe risks to Linux systems globally. Affecting distributions like Ubuntu ...

Google reportedly patched a flaw in the Vertex AI SDK for Python that could allow attackers to hijack model uploads and ...

Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the ...

Chainguard will use AI to protect open-source code. Athena pools open-source users, developers, and maintainers. Others are ...

A single poisoned Python package has produced the most consequential AI supply chain breach of 2026. On March 31, Mercor, a $10 billion AI training startup that recruits, vets, and pays the human ...

The Miasma supply chain campaign has sparked a fresh attack wave called Hades, this time involving 37 malicious wheel ...

CISA added CVE-2026-42271, a high-severity LiteLLM command injection flaw, to its KEV catalog after evidence of active ...

A Palo Alto Networks vulnerability that allows attackers to establish unauthorized VPN access into corporate networks is being actively exploited in the wild, weeks after the company disclosed the ...

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens millions of people using Chrome, Microsoft Edge, and virtually all other ...

The attacker tricked the Butter Network cross-chain bridge into minting millions more tokens than the legitimate supply of MAPO. MAPO, the native token of the Map Protocol, fell 96% on Wednesday after ...

THORChain paused trading after ZachXBT flagged a suspected $10 million exploit spanning Bitcoin, Ethereum, BNB Chain and Base. Decentralized liquidity protocol THORChain halted trading after ...

AI Has Lowered the Floor for Vulnerability Discovery. Patching Alone Cannot Keep Pace. Google's Threat Intelligence Group disclosed this week that an unknown threat actor exploited a zero-day 2FA ...